[Freeipa-devel] [PATCH] 25 Create Tool for Enabling Disabling Managed Entry
Simo Sorce
ssorce at redhat.com
Mon Apr 25 13:43:17 UTC 2011
On Thu, 2011-04-21 at 23:28 +0000, JR Aquino wrote:
> Hmmm
> Both Private Groups and the Hostgroup -> Netgroup Managed Entries
> create objects in the container:
> cn=Managed Entries,cn=plugins,cn=config
>
> Each Ldif contains 2 ldap objects. One that lives in the main $SUFFIX,
> and one in the cn=config
>
> How will these be treated by replication and the multi masters?
Only the common objects in the public suffix are replicated.
I think at some point we discussed that we should use a filter in the
private config entry made so that we could enable/disable the plugin by
simply making the filter result true/false.
Thus not ever touch the entries in cn=config but simply
"enable"/"disable" the functionality by (not)adding the appropriate
attributes to objects so that filters would (not) match.
Simo.
--
Simo Sorce * Red Hat, Inc * New York
More information about the Freeipa-devel
mailing list